<!DOCTYPE html><html lang="zh-CN" data-theme="light"><head><meta charset="UTF-8"><meta http-equiv="X-UA-Compatible" content="IE=edge"><meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no"><title>Mox的笔记库</title><meta name="keywords" content="Working"><meta name="author" content="MocusEZ"><meta name="copyright" content="MocusEZ"><meta name="format-detection" content="telephone=no"><meta name="theme-color" content="#ffffff"><meta name="description" content="探索未曾设想的道路">
<meta property="og:type" content="website">
<meta property="og:title" content="Mox的笔记库">
<meta property="og:url" content="https://www.mocusez.site/page/4/index.html">
<meta property="og:site_name" content="Mox的笔记库">
<meta property="og:description" content="探索未曾设想的道路">
<meta property="og:locale" content="zh_CN">
<meta property="og:image" content="https://www.mocusez.site/img/head.jpg">
<meta property="article:author" content="MocusEZ">
<meta property="article:tag" content="Working">
<meta name="twitter:card" content="summary">
<meta name="twitter:image" content="https://www.mocusez.site/img/head.jpg"><link rel="shortcut icon" href="/img/title.jpg"><link rel="canonical" href="https://www.mocusez.site/page/4/"><link rel="preconnect" href="//cdn.jsdelivr.net"/><link rel="preconnect" href="//hm.baidu.com"/><link rel="preconnect" href="//busuanzi.ibruce.info"/><link rel="stylesheet" href="/css/index.css"><link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/@fortawesome/fontawesome-free/css/all.min.css" media="print" onload="this.media='all'"><link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/@fancyapps/ui/dist/fancybox.min.css" media="print" onload="this.media='all'"><script>var _hmt = _hmt || [];
(function() {
  var hm = document.createElement("script");
  hm.src = "https://hm.baidu.com/hm.js?c85c9eaebc158345532b86397a6dded9";
  var s = document.getElementsByTagName("script")[0]; 
  s.parentNode.insertBefore(hm, s);
})();
</script><script>const GLOBAL_CONFIG = { 
  root: '/',
  algolia: undefined,
  localSearch: {"path":"/search.xml","preload":false,"languages":{"hits_empty":"找不到您查询的内容：${query}"}},
  translate: undefined,
  noticeOutdate: undefined,
  highlight: {"plugin":"highlighjs","highlightCopy":true,"highlightLang":true,"highlightHeightLimit":false},
  copy: {
    success: '复制成功',
    error: '复制错误',
    noSupport: '浏览器不支持'
  },
  relativeDate: {
    homepage: false,
    post: false
  },
  runtime: '天',
  date_suffix: {
    just: '刚刚',
    min: '分钟前',
    hour: '小时前',
    day: '天前',
    month: '个月前'
  },
  copyright: undefined,
  lightbox: 'fancybox',
  Snackbar: undefined,
  source: {
    justifiedGallery: {
      js: 'https://cdn.jsdelivr.net/npm/flickr-justified-gallery/dist/fjGallery.min.js',
      css: 'https://cdn.jsdelivr.net/npm/flickr-justified-gallery/dist/fjGallery.min.css'
    }
  },
  isPhotoFigcaption: false,
  islazyload: false,
  isAnchor: false
}</script><script id="config-diff">var GLOBAL_CONFIG_SITE = {
  title: 'Mox的笔记库',
  isPost: false,
  isHome: true,
  isHighlightShrink: false,
  isToc: false,
  postUpdate: '2023-10-21 12:23:56'
}</script><noscript><style type="text/css">
  #nav {
    opacity: 1
  }
  .justified-gallery img {
    opacity: 1
  }

  #recent-posts time,
  #post-meta time {
    display: inline !important
  }
</style></noscript><script>(win=>{
    win.saveToLocal = {
      set: function setWithExpiry(key, value, ttl) {
        if (ttl === 0) return
        const now = new Date()
        const expiryDay = ttl * 86400000
        const item = {
          value: value,
          expiry: now.getTime() + expiryDay,
        }
        localStorage.setItem(key, JSON.stringify(item))
      },

      get: function getWithExpiry(key) {
        const itemStr = localStorage.getItem(key)

        if (!itemStr) {
          return undefined
        }
        const item = JSON.parse(itemStr)
        const now = new Date()

        if (now.getTime() > item.expiry) {
          localStorage.removeItem(key)
          return undefined
        }
        return item.value
      }
    }
  
    win.getScript = url => new Promise((resolve, reject) => {
      const script = document.createElement('script')
      script.src = url
      script.async = true
      script.onerror = reject
      script.onload = script.onreadystatechange = function() {
        const loadState = this.readyState
        if (loadState && loadState !== 'loaded' && loadState !== 'complete') return
        script.onload = script.onreadystatechange = null
        resolve()
      }
      document.head.appendChild(script)
    })
  
      win.activateDarkMode = function () {
        document.documentElement.setAttribute('data-theme', 'dark')
        if (document.querySelector('meta[name="theme-color"]') !== null) {
          document.querySelector('meta[name="theme-color"]').setAttribute('content', '#0d0d0d')
        }
      }
      win.activateLightMode = function () {
        document.documentElement.setAttribute('data-theme', 'light')
        if (document.querySelector('meta[name="theme-color"]') !== null) {
          document.querySelector('meta[name="theme-color"]').setAttribute('content', '#ffffff')
        }
      }
      const t = saveToLocal.get('theme')
    
          if (t === 'dark') activateDarkMode()
          else if (t === 'light') activateLightMode()
        
      const asideStatus = saveToLocal.get('aside-status')
      if (asideStatus !== undefined) {
        if (asideStatus === 'hide') {
          document.documentElement.classList.add('hide-aside')
        } else {
          document.documentElement.classList.remove('hide-aside')
        }
      }
    
    const detectApple = () => {
      if(/iPad|iPhone|iPod|Macintosh/.test(navigator.userAgent)){
        document.documentElement.classList.add('apple')
      }
    }
    detectApple()
    })(window)</script><meta name="generator" content="Hexo 6.2.0"><link rel="alternate" href="/atom.xml" title="Mox的笔记库" type="application/atom+xml">
</head><body><div id="sidebar"><div id="menu-mask"></div><div id="sidebar-menus"><div class="avatar-img is-center"><img src="/img/head.jpg" onerror="onerror=null;src='/img/friend_404.gif'" alt="avatar"/></div><div class="sidebar-site-data site-data is-center"><a href="/archives/"><div class="headline">文章</div><div class="length-num">61</div></a><a href="/tags/"><div class="headline">标签</div><div class="length-num">0</div></a><a href="/categories/"><div class="headline">分类</div><div class="length-num">8</div></a></div><hr/><div class="menus_items"><div class="menus_item"><a class="site-page" href="/"><i class="fa-fw fas fa-home"></i><span> 首页</span></a></div><div class="menus_item"><a class="site-page" href="/archives/"><i class="fa-fw fas fa-archive"></i><span> 归档</span></a></div><div class="menus_item"><a class="site-page" href="/categories/"><i class="fa-fw fas fa-folder-open"></i><span> 分类</span></a></div><div class="menus_item"><a class="site-page" href="/link/"><i class="fa-fw fas fa-link"></i><span> 友链&amp;私人收藏</span></a></div><div class="menus_item"><a class="site-page" href="/board/"><i class="fa-fw fas fa-user"></i><span> 留言板</span></a></div></div></div></div><div class="page" id="body-wrap"><header class="full_page" id="page-header" style="background-image: url('/img/kali-2.0_kali-2.0-1920x1080.png')"><nav id="nav"><span id="blog_name"><a id="site-name" href="/">Mox的笔记库</a></span><div id="menus"><div id="search-button"><a class="site-page social-icon search"><i class="fas fa-search fa-fw"></i><span> 搜索</span></a></div><div class="menus_items"><div class="menus_item"><a class="site-page" href="/"><i class="fa-fw fas fa-home"></i><span> 首页</span></a></div><div class="menus_item"><a class="site-page" href="/archives/"><i class="fa-fw fas fa-archive"></i><span> 归档</span></a></div><div class="menus_item"><a class="site-page" href="/categories/"><i class="fa-fw fas fa-folder-open"></i><span> 分类</span></a></div><div class="menus_item"><a class="site-page" href="/link/"><i class="fa-fw fas fa-link"></i><span> 友链&amp;私人收藏</span></a></div><div class="menus_item"><a class="site-page" href="/board/"><i class="fa-fw fas fa-user"></i><span> 留言板</span></a></div></div><div id="toggle-menu"><a class="site-page"><i class="fas fa-bars fa-fw"></i></a></div></div></nav><div id="site-info"><h1 id="site-title">Mox的笔记库</h1><div id="site-subtitle"><span id="subtitle"></span></div><div id="site_social_icons"><a class="social-icon" href="https://github.com/mocusez" rel="external nofollow noreferrer" target="_blank" title="Github"><i class="fab fa-github"></i></a><a class="social-icon" href="mailto:285918468@qq.com" rel="external nofollow noreferrer" target="_blank" title="Email"><i class="fas fa-envelope"></i></a><a class="social-icon" href="/atom.xml" target="_blank" title="RSS"><i class="fas fa-rss"></i></a></div></div><div id="scroll-down"><i class="fas fa-angle-down scroll-down-effects"></i></div></header><main class="layout" id="content-inner"><div class="recent-posts" id="recent-posts"><div class="recent-post-item"><div class="post_cover left"><a href="/posts/ffc0.html" title="2021XCTF回顾"><img class="post_bg" src="https://ae05.alicdn.com/kf/H0f478200adbf47b985e8a5981aa70691L.png" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="2021XCTF回顾"></a></div><div class="recent-post-info"><a class="article-title" href="/posts/ffc0.html" title="2021XCTF回顾">2021XCTF回顾</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time datetime="2022-01-01T07:04:00.000Z" title="发表于 2022-01-01 15:04:00">2022-01-01</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/CTF%E9%A2%98%E8%A7%A3/">CTF题解</a></span></div><div class="content">2021XCTF回顾第一次打CTF打到凌晨1点，记录一下
2022.1.8更新
SCTF2021的项目仓库与文档https://syclover.feishu.cn/docs/doccnmKCtL4ABewkf89aAJXIdmghttps://github.com/SycloverTeam/SCTF2021
This is a tree看一下每个文件夹下面的文件内容都是4个字符，猜到应该是Base64编码
一开始没准备做，但在学弟的热情下，还是干了
python的OS模块之前没用过，写脚本花了很长时间
1234567891011import osi=[]for root,dirs,files in os.walk(r&quot;D:\Secruity\2021_12_25XCTF\This_is_a tree&quot;):        for file in files:            #获取文件所属目录            # print(root)            #获取文件路径            with open(os.path.join(root,f ...</div></div></div><div class="recent-post-item"><div class="post_cover right"><a href="/posts/1b50.html" title="2021年12月 Vivo千镜杯回顾"><img class="post_bg" src="https://ae03.alicdn.com/kf/Hfbb450e03c0448e998f824f82903ad9cq.png" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="2021年12月 Vivo千镜杯回顾"></a></div><div class="recent-post-info"><a class="article-title" href="/posts/1b50.html" title="2021年12月 Vivo千镜杯回顾">2021年12月 Vivo千镜杯回顾</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time datetime="2022-01-01T03:52:00.000Z" title="发表于 2022-01-01 11:52:00">2022-01-01</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/CTF%E9%A2%98%E8%A7%A3/">CTF题解</a></span></div><div class="content">2021年12月 Vivo千镜杯回顾感觉人太菜了，只做了一道签到的Mobile和一道流量分析
如果还有时间的话，再把另外一道Mobile拿出来复现
vivoNeedyou打完比赛后，当作西理工的校赛出掉了
题解见
西理工网安小组第二次校赛题解
黑客入侵流量分析题，上来一个txt的说明

打开祖传的wireshark

webshell一般用post请求上传，先过滤

tlswslhaoev4lva.php
相当可疑
然而我不熟悉webshell，只能百度大法好
然后我就找到了这道这里
https://zhuanlan.zhihu.com/p/429696539
一模一样！！！
大佬说：“这个特征应该是godzilla，接下来计算一下md5就能得出flag了~”
1flag&#123;fe7c3416a2ace0d97e4029e77368c5ab&#125;

不知道是从哪个题库里出来的题目
鹤林玉露赛后2022年用GDA+frida复现的题目

静态调试追下去，经验不足，有被吓到，都是奇奇怪怪的加密函数

实际动态调试（Frida）发现，getIVFromString()和getKe ...</div></div></div><div class="recent-post-item"><div class="post_cover left"><a href="/posts/6d5d.html" title="2021年12月RSSHub开发踩坑"><img class="post_bg" src="https://ae02.alicdn.com/kf/H19b40912572748cfb2882a78ff8edcc5W.png" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="2021年12月RSSHub开发踩坑"></a></div><div class="recent-post-info"><a class="article-title" href="/posts/6d5d.html" title="2021年12月RSSHub开发踩坑">2021年12月RSSHub开发踩坑</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time datetime="2022-01-01T03:00:00.000Z" title="发表于 2022-01-01 11:00:00">2022-01-01</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/%E6%97%A5%E5%B8%B8%E7%AC%94%E8%AE%B0/">日常笔记</a></span></div><div class="content">2021年12月RSSHub开发踩坑在去年的最后一周，我提交了西安理工大学的RSSHub路由
有点小激动，第一次在Github上给开源项目Pull Request
https://github.com/DIYgod/RSSHub/pull/8799
记录下踩过的坑

V2路由截至2021年12月，开发文档都没有关于V2路由的说明（V2路由的计划应该是2021年11月提出的），在最后准备提交的时候，看了别人的PR才发现这个问题。
进了官方的TG群，才发现V2居然是临时替代品，V3还不保证与V2兼容
啊这
那也没办法喽
GotGot在12月初升级到12.0了，然而RSSHub里Got的组件还没有更新，在先期测试Got（学习Got）的过程中发现死活安装不上，才发现是NodeJS的版本太低。
当然，我最后也没有升级本地NodeJS版本，安装了11.8.2的版本解决问题
UA问题get请求时不需要配置UA，系统默认配置好了
https://github.com/DIYgod/RSSHub/pull/8796#discussion_r776750844
PR问题当时PR里面漏写一个s，我还以为请求 ...</div></div></div><div class="recent-post-item"><div class="post_cover right"><a href="/posts/1c5b.html" title="西理工网安小组第二次校赛题解"><img class="post_bg" src="https://ae04.alicdn.com/kf/Ha1e3da074be9467faa1a9be4ef3e59e4b.png" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="西理工网安小组第二次校赛题解"></a></div><div class="recent-post-info"><a class="article-title" href="/posts/1c5b.html" title="西理工网安小组第二次校赛题解">西理工网安小组第二次校赛题解</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time datetime="2021-12-23T07:29:26.000Z" title="发表于 2021-12-23 15:29:26">2021-12-23</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/CTF%E9%A2%98%E8%A7%A3/">CTF题解</a></span></div><div class="content">马上就要2022年了，人却被困在学校回不去。
但这并不影响我写个WriteUp，是时候该整理一下今年见到的东西了。
12-23 5点钟加了个Pwn的题解
Reverse逆向的题都是从不同地方抄来的（属实太菜，想不出人家的脑洞）
但都是比赛真题，不知道能否给大家带来些启发
easy_py介绍语：一道简单的Python逆向
分数：100
源码可以通过
https://tool.lu/pyc/
或uncompyle6反编译
1uncompyle6 ‐o 1.py ./easy_py.pyc



题解：
该题是创建了个全局变量，通过两个线程将其进行递减，并进行相关算法：将输入的数据从后往前（37~0），按照列表顺序，当顺序号为：
奇数执行 t1 线程算法：将该数据与顺序进行异或
偶数执行 t2 线程算法：将该数据与后一个数据进行异或
1234567891011121314151617flag=[     23, 72, 77, 125, 115, 74, 27, 98, 23, 87, 0, 95]j=0for i in flag:    if j%2==0:        flag[j]= ...</div></div></div><div class="recent-post-item"><div class="post_cover left"><a href="/posts/d473.html" title="Nexus9 刷机记录"><img class="post_bg" src="https://pic.rmb.bdstatic.com/bjh/6d7f70fc1f4d3c566e3af5cde22175ae.png" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="Nexus9 刷机记录"></a></div><div class="recent-post-info"><a class="article-title" href="/posts/d473.html" title="Nexus9 刷机记录">Nexus9 刷机记录</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time datetime="2021-10-12T06:10:26.000Z" title="发表于 2021-10-12 14:10:26">2021-10-12</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/%E6%97%A5%E5%B8%B8%E7%AC%94%E8%AE%B0/">日常笔记</a></span></div><div class="content">Nexus9 刷机记录想刷Kali Nethunter好久了，第一次在闲鱼上买了一台 一加3T，拿回来以后才发现是华强北改装机，屏幕是好的，但是USB线用不了数据传输（差点没骂出来，400软妹币哎）
有了第一次的教训，第二次聪明了些，坚持线下面基，找了一个巴西人买了nexus 9，目测应该是美版的，屏幕上有一个气泡，价格300rmb，还算合理。
机子拿回来当天晚上就开始刷了
别问我为什么拖到现在才写文章，这期间发生了太多的事情，直到现在我CTF的笔袋都还没复盘
准备工作第一步肯定是TWRP刷上啊，谷歌亲儿子待遇就是好
HTC Nexus 9

另外还准备了这个，但是最后没有用上
Nexus Root Toolkit v2.1.6 | WugFresh
kali的包去官网上找
https://www.kali.org/get-kali/#kali-mobile

机子的原生系统是Andriod 7.1.2
理论上应该找一个Andriod 5.0的包刷进去的，但是我图省事，把kali包给强刷进去了，结果也没问题
（事后发现，BadUSB好像有点问题，没时间解决）
刷入Magisk面具V20 ...</div></div></div><div class="recent-post-item"><div class="post_cover right"><a href="/posts/7d0c.html" title="报告概要翻译：《The Decline of Computers as a General Purpose Technology》"><img class="post_bg" src="https://pic.rmb.bdstatic.com/bjh/0b1bb7a089cd4a90b4b210dfdcc41a74.png" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="报告概要翻译：《The Decline of Computers as a General Purpose Technology》"></a></div><div class="recent-post-info"><a class="article-title" href="/posts/7d0c.html" title="报告概要翻译：《The Decline of Computers as a General Purpose Technology》">报告概要翻译：《The Decline of Computers as a General Purpose Technology》</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time datetime="2021-05-04T02:30:26.000Z" title="发表于 2021-05-04 10:30:26">2021-05-04</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/%E6%97%A5%E5%B8%B8%E7%AC%94%E8%AE%B0/">日常笔记</a></span></div><div class="content">报告概要翻译：《The Decline of Computers as a General Purpose Technology》中文译名：计算机作为通用技术的衰落

这是一篇发表在《Communications of the ACM》2021年三月刊的文章
由于个人兴趣+顺路完成作业，在这里做一篇概要翻译
“计算机的崛起部分是因为技术上的成功，部分也是有资本力量推动。计算机之类的通用技术产品具有广泛的技术适用性，产品的改进和市场的增长能在数十年内互相促进。但到了它生命周期的末端：随着技术进步放缓，其它产品可能会在部分领域替代这种通用产品，破坏经济上的自我强化循环。今天我们正目睹计算机的这种改变：随着 CPU 改进的放缓，应用转向了专门处理器，如 GPU 虽然做的任务比 CPU 少，但在特定任务上性能更出色。深度学习和比特币挖矿等应用也都转向了专门处理器。计算机作为一种通用技术开始衰落了”——摘自Solidot
DOI：http://dx.doi.org/10.1145/3430936
作者：Neil C. Thompson是美国麻省理工学院计算机科学与人工智能实验室和数字化经济项目的 ...</div></div></div><div class="recent-post-item"><div class="post_cover left"><a href="/posts/128b.html" title="魅蓝2刷机"><img class="post_bg" src="https://pic.rmb.bdstatic.com/bjh/5d49947225e9088c886c42f18a79a784.jpeg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="魅蓝2刷机"></a></div><div class="recent-post-info"><a class="article-title" href="/posts/128b.html" title="魅蓝2刷机">魅蓝2刷机</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time datetime="2021-04-08T12:30:26.000Z" title="发表于 2021-04-08 20:30:26">2021-04-08</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/%E6%97%A5%E5%B8%B8%E7%AC%94%E8%AE%B0/">日常笔记</a></span></div><div class="content">魅蓝2刷机（摸鱼文，其实应该放在21年寒假发的，由于各种原因推到现在）
事件起因：需要一台可以Root的机子，干点不正常的事情
手边就恰巧有这么一台——唯一一台年代久远且没有坏的机子
不会吧，不会有人2020年还在想着给魅蓝二刷机吧？
资料收集阶段讲真的，最初其实不抱希望，魅蓝系列的机子没有一加系列那么耐玩，谷歌自家的pixel那就更不必说了，魅蓝系列甚至不是魅族亲儿子，性能配置又低（当年卖599，2+16，刚出的时候就买了）想刷一个魔趣，但是魔趣官方也没有做适配，所以这个想法一直拖到寒假才有了转机：

但是我在酷安上找到了组织（在朋友的帮助下）！！！

在酷安上找到了一个资源QQ群，群号1064802293
里面从Android7-11刷机包一应俱全

干活ing标准刷机流程：解锁-&gt;刷twrp-&gt;上rom
第一步解锁就出了大麻烦——机子要先root才能解锁
要是我能root，我为什么要刷机？？

折腾两个小时后，老老实实给群主交2块钱，要了免Root一键刷机工具，才把twrp刷进去，上了个AOSP（Android 8）+Magisk，刷机过程才算告一段落

玩机阶段第一 ...</div></div></div><div class="recent-post-item"><div class="post_cover right"><a href="/posts/b005.html" title="博客从Gitee搬迁到腾讯云记录"><img class="post_bg" src="https://pic.rmb.bdstatic.com/bjh/4e244885213dbd30d301c3454ec2b31b.png" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="博客从Gitee搬迁到腾讯云记录"></a></div><div class="recent-post-info"><a class="article-title" href="/posts/b005.html" title="博客从Gitee搬迁到腾讯云记录">博客从Gitee搬迁到腾讯云记录</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time datetime="2021-03-11T02:30:26.000Z" title="发表于 2021-03-11 10:30:26">2021-03-11</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/%E6%97%A5%E5%B8%B8%E7%AC%94%E8%AE%B0/">日常笔记</a></span></div><div class="content">博客从Gitee搬迁到腾讯云记录拿红包钱买个服务器来玩一玩，从此告别Gitee的垃圾服务器

选择云服务器选择套餐：2核4G6M腾讯云轻量云服务器 
参考这篇文章购买
4年 2核4G6M腾讯云轻量云服务器 （一年108元）
顺带买了域名：mocusez.site
备案漫长的等待

取得备案号后，还需要公安备案（手持身份证拍照）

安装Docker与Docker—Compose菜鸟教程是真的好用，使用docker能极大方便网站维护和更新
Docker-Compose安装
CentOS Docker 安装
nginx服务搭建参考了这篇文章
https://blog.csdn.net/weixin_36586564/article/details/103820044
主机重启后，可能因为docker没有关闭导致docker重启错误，这时候就需要把docker重启
1service docker restart

docker配置（用dockerfile应该会更好，可惜不会）
12345678910111213141516171819202122docker run --name nginx- ...</div></div></div><div class="recent-post-item"><div class="post_cover left"><a href="/posts/b88b.html" title="记一次手机端渗透实战"><img class="post_bg" src="https://cdn.jsdelivr.net/gh/mocusez/Photo/20210215/fuchou.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="记一次手机端渗透实战"></a></div><div class="recent-post-info"><a class="article-title" href="/posts/b88b.html" title="记一次手机端渗透实战">记一次手机端渗透实战</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time datetime="2021-02-14T06:10:26.000Z" title="发表于 2021-02-14 14:10:26">2021-02-14</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/%E6%97%A5%E5%B8%B8%E7%AC%94%E8%AE%B0/">日常笔记</a></span></div><div class="content">记一次手机端渗透实战昨天在福州吃饭，亲戚晚了半个小时才来，闲的无聊，向服务员问了wifi密码后，掏出手机扫扫漏洞，没想到真的能捡到漏洞[吃瓜]
不会吧，不会真有人闲的无聊来餐厅做渗透测试吧！
使用软件Fing
Kali环境下的Metasploit
正文首先，照例用Fing清点一下局域网资产，发现有三台电脑

都开起了445端口（Samba端口）（要素察觉）

打开MSF的EternalBlue扫描器，爆出一台机子

话不多说，直接上漏洞利用……然后就真的返回shell了！

做到这里，上个Mimikatz套密码，做个可持续后门也是可行的。不过这时候亲戚来了，就老老实实干饭去了。
后记：临走前做了一个试了一下持续化后门，但是没有收到回显，之前没玩过，估计是失败了

结语第一次在手机上完成一整套渗透流程，不然之前老是失败（玄学的高中智能班牌）
发个贴纪念一下
话说回来，我走过的那么多餐厅中，只有这家餐厅的电脑既没做防护，又不打电脑补丁。但他们家做的海鲜确实好吃……
</div></div></div><div class="recent-post-item"><div class="post_cover right"><a href="/posts/79b6.html" title="汇编语言笔记"><img class="post_bg" src="https://cdn.fuhao321.com/uploads/2009/1-200Z20S45cM.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="汇编语言笔记"></a></div><div class="recent-post-info"><a class="article-title" href="/posts/79b6.html" title="汇编语言笔记">汇编语言笔记</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time datetime="2021-02-11T13:10:26.000Z" title="发表于 2021-02-11 21:10:26">2021-02-11</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/%E6%97%A5%E5%B8%B8%E7%AC%94%E8%AE%B0/">日常笔记</a></span></div><div class="content">汇编语言笔记Assemby Language (MASM)
涉及操作系统，编写编译器
以机器级思维方式处理编程问题
课程配套资料：http://asmirvine.com/
VS2019汇编环境配置
操作数不是数
irvine32配置（作者写的……作者是Kip Irvine）
https://blog.csdn.net/fuhanghang/article/details/112408348
测试irvine的验证代码
1234567891011121314151617181920212223; This program adds and subtracts 32-bit integers; and stores the sum in a variable. INCLUDE Irvine32.inc .dataval1     dword  10000hval2     dword  40000hval3     dword  20000hfinalVal dword  ? .codemain PROC     mov    eax,val1            ; start wi ...</div></div></div><nav id="pagination"><div class="pagination"><a class="extend prev" rel="prev" href="/page/3/#content-inner"><i class="fas fa-chevron-left fa-fw"></i></a><a class="page-number" href="/">1</a><span class="space">&hellip;</span><a class="page-number" href="/page/3/#content-inner">3</a><span class="page-number current">4</span><a class="page-number" href="/page/5/#content-inner">5</a><span class="space">&hellip;</span><a class="page-number" href="/page/7/#content-inner">7</a><a class="extend next" rel="next" href="/page/5/#content-inner"><i class="fas fa-chevron-right fa-fw"></i></a></div></nav></div><div class="aside-content" id="aside-content"><div class="card-widget card-info"><div class="is-center"><div class="avatar-img"><img src="/img/head.jpg" onerror="this.onerror=null;this.src='/img/friend_404.gif'" alt="avatar"/></div><div class="author-info__name">MocusEZ</div><div class="author-info__description">探索未曾设想的道路</div></div><div class="card-info-data site-data is-center"><a href="/archives/"><div class="headline">文章</div><div class="length-num">61</div></a><a href="/tags/"><div class="headline">标签</div><div class="length-num">0</div></a><a href="/categories/"><div class="headline">分类</div><div class="length-num">8</div></a></div><div class="card-info-social-icons is-center"><a class="social-icon" href="https://github.com/mocusez" rel="external nofollow noreferrer" target="_blank" title="Github"><i class="fab fa-github"></i></a><a class="social-icon" href="mailto:285918468@qq.com" rel="external nofollow noreferrer" target="_blank" title="Email"><i class="fas fa-envelope"></i></a><a class="social-icon" href="/atom.xml" target="_blank" title="RSS"><i class="fas fa-rss"></i></a></div></div><div class="card-widget card-announcement"><div class="item-headline"><i class="fas fa-bullhorn fa-shake"></i><span>公告</span></div><div class="announcement_content">迎接新的明天</div></div><div class="sticky_layout"><div class="card-widget card-recent-post"><div class="item-headline"><i class="fas fa-history"></i><span>最新文章</span></div><div class="aside-list"><div class="aside-list-item"><a class="thumbnail" href="/posts/3e9f.html" title="RMM观察与初探"><img src="https://z1.ax1x.com/2023/10/21/piF47TA.md.png" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="RMM观察与初探"/></a><div class="content"><a class="title" href="/posts/3e9f.html" title="RMM观察与初探">RMM观察与初探</a><time datetime="2023-10-21T04:30:00.000Z" title="发表于 2023-10-21 12:30:00">2023-10-21</time></div></div><div class="aside-list-item"><a class="thumbnail" href="/posts/5e44.html" title="计算机网络课设——UDP/TCP/TLS Socket实验"><img src="https://s1.ax1x.com/2023/09/09/pP6qXOU.png" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="计算机网络课设——UDP/TCP/TLS Socket实验"/></a><div class="content"><a class="title" href="/posts/5e44.html" title="计算机网络课设——UDP/TCP/TLS Socket实验">计算机网络课设——UDP/TCP/TLS Socket实验</a><time datetime="2023-09-09T07:10:00.000Z" title="发表于 2023-09-09 15:10:00">2023-09-09</time></div></div><div class="aside-list-item"><a class="thumbnail" href="/posts/cd44.html" title="JQuery的XSS初探"><img src="https://s1.ax1x.com/2023/09/08/pPyvO0O.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="JQuery的XSS初探"/></a><div class="content"><a class="title" href="/posts/cd44.html" title="JQuery的XSS初探">JQuery的XSS初探</a><time datetime="2023-09-08T04:30:00.000Z" title="发表于 2023-09-08 12:30:00">2023-09-08</time></div></div><div class="aside-list-item"><a class="thumbnail" href="/posts/5862.html" title="生产实习记录"><img src="https://s1.ax1x.com/2023/09/02/pPBH058.png" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="生产实习记录"/></a><div class="content"><a class="title" href="/posts/5862.html" title="生产实习记录">生产实习记录</a><time datetime="2023-09-02T13:51:00.000Z" title="发表于 2023-09-02 21:51:00">2023-09-02</time></div></div><div class="aside-list-item"><a class="thumbnail" href="/posts/9a9b.html" title="Fedora-CoreOS配置与试用（2023年）"><img src="https://s1.ax1x.com/2023/08/28/pPa8tlF.png" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="Fedora-CoreOS配置与试用（2023年）"/></a><div class="content"><a class="title" href="/posts/9a9b.html" title="Fedora-CoreOS配置与试用（2023年）">Fedora-CoreOS配置与试用（2023年）</a><time datetime="2023-08-28T11:35:00.000Z" title="发表于 2023-08-28 19:35:00">2023-08-28</time></div></div></div></div><div class="card-widget card-categories"><div class="item-headline">
            <i class="fas fa-folder-open"></i>
            <span>分类</span>
            
            </div>
            <ul class="card-category-list" id="aside-cat-list">
            <li class="card-category-list-item "><a class="card-category-list-link" href="/categories/Arch-Linux%E6%8A%98%E8%85%BE/"><span class="card-category-list-name">Arch Linux折腾</span><span class="card-category-list-count">4</span></a></li><li class="card-category-list-item "><a class="card-category-list-link" href="/categories/CTF%E9%A2%98%E8%A7%A3/"><span class="card-category-list-name">CTF题解</span><span class="card-category-list-count">7</span></a></li><li class="card-category-list-item "><a class="card-category-list-link" href="/categories/Security%E7%AC%94%E8%AE%B0/"><span class="card-category-list-name">Security笔记</span><span class="card-category-list-count">2</span></a></li><li class="card-category-list-item "><a class="card-category-list-link" href="/categories/Termux%E7%AC%94%E8%AE%B0/"><span class="card-category-list-name">Termux笔记</span><span class="card-category-list-count">3</span></a></li><li class="card-category-list-item "><a class="card-category-list-link" href="/categories/%E5%AD%A6%E4%B9%A0%E8%B5%84%E6%96%99/"><span class="card-category-list-name">学习资料</span><span class="card-category-list-count">4</span></a></li><li class="card-category-list-item "><a class="card-category-list-link" href="/categories/%E6%97%A5%E5%B8%B8%E7%AC%94%E8%AE%B0/"><span class="card-category-list-name">日常笔记</span><span class="card-category-list-count">38</span></a></li><li class="card-category-list-item "><a class="card-category-list-link" href="/categories/%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95%E7%AC%94%E8%AE%B0/"><span class="card-category-list-name">渗透测试笔记</span><span class="card-category-list-count">1</span></a></li><li class="card-category-list-item "><a class="card-category-list-link" href="/categories/%E7%94%A8%E8%BF%87%E5%B0%B1%E4%B8%A2%E7%9A%84%E4%B8%9C%E8%A5%BF/"><span class="card-category-list-name">用过就丢的东西</span><span class="card-category-list-count">2</span></a></li>
            </ul></div><div class="card-widget card-archives"><div class="item-headline"><i class="fas fa-archive"></i><span>归档</span><a class="card-more-btn" href="/archives/" title="查看更多">
    <i class="fas fa-angle-right"></i></a></div><ul class="card-archive-list"><li class="card-archive-list-item"><a class="card-archive-list-link" href="/archives/2023/10/"><span class="card-archive-list-date">十月 2023</span><span class="card-archive-list-count">1</span></a></li><li class="card-archive-list-item"><a class="card-archive-list-link" href="/archives/2023/09/"><span class="card-archive-list-date">九月 2023</span><span class="card-archive-list-count">3</span></a></li><li class="card-archive-list-item"><a class="card-archive-list-link" href="/archives/2023/08/"><span class="card-archive-list-date">八月 2023</span><span class="card-archive-list-count">2</span></a></li><li class="card-archive-list-item"><a class="card-archive-list-link" href="/archives/2023/06/"><span class="card-archive-list-date">六月 2023</span><span class="card-archive-list-count">1</span></a></li><li class="card-archive-list-item"><a class="card-archive-list-link" href="/archives/2023/02/"><span class="card-archive-list-date">二月 2023</span><span class="card-archive-list-count">1</span></a></li><li class="card-archive-list-item"><a class="card-archive-list-link" href="/archives/2023/01/"><span class="card-archive-list-date">一月 2023</span><span class="card-archive-list-count">3</span></a></li><li class="card-archive-list-item"><a class="card-archive-list-link" href="/archives/2022/09/"><span class="card-archive-list-date">九月 2022</span><span class="card-archive-list-count">2</span></a></li><li class="card-archive-list-item"><a class="card-archive-list-link" href="/archives/2022/08/"><span class="card-archive-list-date">八月 2022</span><span class="card-archive-list-count">6</span></a></li></ul></div><div class="card-widget card-webinfo"><div class="item-headline"><i class="fas fa-chart-line"></i><span>网站资讯</span></div><div class="webinfo"><div class="webinfo-item"><div class="item-name">文章数目 :</div><div class="item-count">61</div></div><div class="webinfo-item"><div class="item-name">已运行时间 :</div><div class="item-count" id="runtimeshow" data-publishDate="2019-11-30T16:00:00.000Z"><i class="fa-solid fa-spinner fa-spin"></i></div></div><div class="webinfo-item"><div class="item-name">本站访客数 :</div><div class="item-count" id="busuanzi_value_site_uv"><i class="fa-solid fa-spinner fa-spin"></i></div></div><div class="webinfo-item"><div class="item-name">本站总访问量 :</div><div class="item-count" id="busuanzi_value_site_pv"><i class="fa-solid fa-spinner fa-spin"></i></div></div><div class="webinfo-item"><div class="item-name">最后更新时间 :</div><div class="item-count" id="last-push-date" data-lastPushDate="2023-10-21T04:23:56.038Z"><i class="fa-solid fa-spinner fa-spin"></i></div></div></div></div></div></div></main><footer id="footer"><div id="footer-wrap"><div class="copyright">&copy;2019 - 2023 By MocusEZ</div><div class="framework-info"><span>框架 </span><a target="_blank" rel="noopener external nofollow noreferrer" href="https://hexo.io">Hexo</a><span class="footer-separator">|</span><span>主题 </span><a target="_blank" rel="noopener external nofollow noreferrer" href="https://github.com/jerryc127/hexo-theme-butterfly">Butterfly</a></div><div class="footer_custom_text"><a href="http://beian.miit.gov.cn/" rel="external nofollow noreferrer"  style="color:#f72b07" target="_blank">闽ICP备2021003009号</a></div></div></footer></div><div id="rightside"><div id="rightside-config-hide"><button id="darkmode" type="button" title="浅色和深色模式转换"><i class="fas fa-adjust"></i></button><button id="hide-aside-btn" type="button" title="单栏和双栏切换"><i class="fas fa-arrows-alt-h"></i></button></div><div id="rightside-config-show"><button id="rightside_config" type="button" title="设置"><i class="fas fa-cog fa-spin"></i></button><button id="go-up" type="button" title="回到顶部"><i class="fas fa-arrow-up"></i></button></div></div><div id="local-search"><div class="search-dialog"><nav class="search-nav"><span class="search-dialog-title">搜索</span><span id="loading-status"></span><button class="search-close-button"><i class="fas fa-times"></i></button></nav><div class="is-center" id="loading-database"><i class="fas fa-spinner fa-pulse"></i><span>  数据库加载中</span></div><div class="search-wrap"><div id="local-search-input"><div class="local-search-box"><input class="local-search-box--input" placeholder="搜索文章" type="text"/></div></div><hr/><div id="local-search-results"></div></div></div><div id="search-mask"></div></div><div><script src="/js/utils.js"></script><script src="/js/main.js"></script><script src="https://cdn.jsdelivr.net/npm/@fancyapps/ui/dist/fancybox.umd.min.js"></script><script src="/js/search/local-search.js"></script><div class="js-pjax"><script>function subtitleType () {
  if (true) { 
    window.typed = new Typed("#subtitle", {
      strings: ["初看前路近可至，细思百事竞待忙","认知，信条，教导"],
      startDelay: 300,
      typeSpeed: 150,
      loop: true,
      backSpeed: 50
    })
  } else {
    document.getElementById("subtitle").innerHTML = '初看前路近可至，细思百事竞待忙'
  }
}

if (true) {
  if (typeof Typed === 'function') {
    subtitleType()
  } else {
    getScript('https://cdn.jsdelivr.net/npm/typed.js/lib/typed.min.js').then(subtitleType)
  }
} else {
  subtitleType()
}</script></div><script>(function(i,s,o,g,r,a,m){i["DaoVoiceObject"]=r;i[r]=i[r]||function(){(i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;a.charset="utf-8";m.parentNode.insertBefore(a,m)})(window,document,"script",('https:' == document.location.protocol ? 'https:' : 'http:') + "//widget.daovoice.io/widget/1df8ba05.js","daovoice")
</script><script>var isChatBtn = false
daovoice('init', {
  app_id: '1df8ba05',},{
  launcher: { 
     disableLauncherIcon: isChatBtn // 悬浮 ICON 是否显示
  },
});
daovoice('update');

if (isChatBtn) {
  var chatBtnFn = () => {
    var chatBtn = document.getElementById("chat_btn")
    chatBtn.addEventListener("click", function(){
      daovoice('show')
    });
  }
  chatBtnFn()
} else {
  if (false) {
    function chatBtnHide () {
      daovoice('update', {},{
        launcher: { 
        disableLauncherIcon: true // 悬浮 ICON 是否显示
        },
      });
    }
    function chatBtnShow () {
      daovoice('update', {},{
        launcher: { 
        disableLauncherIcon: false // 悬浮 ICON 是否显示
        },
      });
    }
  }
}</script><script async data-pjax src="//busuanzi.ibruce.info/busuanzi/2.3/busuanzi.pure.mini.js"></script></div></body></html>